On Thu, Nov 23, 2006 at 12:32:52PM +0100, Marek Zakowicz wrote: > On Wed, 22 Nov 2006, kaszak wrote: > >iptables v1.3.6: > >[...] > >Ani ta ani ta wersja nie działa :( > > Na starszej wersji iptables (1.2.11) poszło bez problemu: > $ sudo iptables -I OUTPUT -m owner --cmd-owner ls -j REJECT > $ sudo iptables -L | grep REJECT > REJECT all -- anywhere anywhere OWNER CMD > match ls reject-with icmp-port-unreachable
To nie kwestia wersji iptables, ale jądra - w 2.6.xx "has gone away" :( Pozostaje SeLinux, albo jakiś sandbox -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
